Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=227791
Summary: CVE-2007-160: centericq buffer overflow
Product: Fedora Extras
Version: devel
Platform: All
OS/Version: Linux
Status: NEW
Severity: normal
Priority: normal
Component: centericq
AssignedTo: andreas.bierfert(a)lowlatency.de
ReportedBy: kevin(a)tummy.com
QAContact: extras-qa(a)fedoraproject.org
CC: fedora-security-list(a)redhat.com
Description of problem:
centericq is vulnerable to a buffer overflow in it's livejournal support.
See:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0160
All fedora extras versions seem to be vulnerable.
More info, and a patch that debian is using is at:
http://mailman.linuxpl.org/pipermail/cicq/2007-January/004866.html
--
Configure bugmail:
https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.